Fortinet updates FortiOS, FortiPAM, and FortiSwitch Manager, among others
Patch Day also at Fortinet: The manufacturer has closed several vulnerabilities that could be attractive to attackers as part of an attack kill chain.
(Image: AFANASEV IVAN/Shutterstock.com)
In addition to the "usual suspects" Microsoft and Adobe, Fortinet has also released a whole series of updates for various products just in time for Patch Day.
The current security advisories mention a total of 18 closed vulnerabilities. Two of them were rated with the severity "High"; they affect FortiOS, FortiPAM, and FortiSwitch Manager. In addition, there are "Medium" and "Low" vulnerabilities in, among others, FortiAnalyzer, FortiProxy, FortiManager Cloud, FortiMail, and FortiSRA.
Videos by heise
Given that the manufacturer's IT security solutions have frequently been the target of circulating exploit code in the recent past, admins should act as quickly as possible. To date, however, no exploits targeting the current vulnerabilities are known.
Unauthorized access made easy
Local, authenticated attackers could exploit the vulnerability CVE-2025-58325 ("Restricted CLI command bypass"; CVSS score 7.8) for unauthorized execution of system commands via the command line. It affects FortiOS in the entire 6.4 version series, versions 7.0.0 to 7.0.15, 7.2.0 to 7.2.10, and 7.4.0 to 7.4.5 (each including the latter) as well as version 7.6.0. An upgrade to the next higher version or a switch from 6.4 to a current, fixed release will provide a remedy.
Weak authentication mechanisms are the root of CVE-2025-49201 (CVSS 7.4), a vulnerability that, according to Fortinet, facilitates brute-force attacks. The National Vulnerability Database (NVD) also indicates that, in this case too, it is possible to execute malicious code or commands using special HTTP requests. Several FortiPAM version series (except 1.6 and 1.7) and FortiSwitch Manager 7.2.0 up to and including 7.2.4 are vulnerable.
Detailed information on all vulnerable and secured versions can be found in the following advisories:
All vulnerabilities at a glance
An overview of vulnerabilities with lower risk ratings is also provided by Fortinet's overview page, along with detailed filtering options by date, product, and severity, for example.
(ovw)
